News & Analysis as of

An Update on the Cybersecurity Framework and Action Items for NIST

The National Institute of Standards and Technology (NIST) recently released an update on its Framework for Improving Critical Infrastructure Cybersecurity (The Framework). The Framework was first issued in February 2014 as a...more

Intro to Cybersecurity Framework: New Mandatory NIST Standards for Government Contractors?

Cybersecurity remains one of the most important and least understood issues of the day. Last week, the National Institute of Standards and Technology (NIST) hosted a workshop in Tampa, Florida, to receive private sector...more

SIFMA Issues Cybersecurity Regulatory Principles

Does everyone feel compelled to comment on cybersecurity issues? It seems that way. And on October 20th the Securities Industry and Financial Markets Association jumped deeper into the fray when it issued its Principles for...more

A Different Kind of “Virus”: FDA Follows NIST Framework in Cybersecurity Guidance for Medical Devices

In past posts we’ve taken a close look at the Framework for Improving Critical Infrastructure Cybersecurity put forth by the National Institute of Standards and Technology (NIST), exploring its wide-ranging implications for...more

NIST RFI to Solicit Feedback on Cybersecurity Framework Closing: Good Opportunity to Assess Suggestions and Concerns

On Friday, October 10th, an opportunity to submit comments on a Request for Information concerning awareness and implementation of the “Framework for Improving Critical Infrastructure Cybersecurity” closes. Companies of all...more

Privacy & Cybersecurity Update - August 2014

In This Issue: - NIST Announces October Workshop and Releases Framewok Update - Insurance Company Succeeds in Cybersecurity Litigation - Safe Harbor Under Attack — This Time From a US Group -...more

NIST Seeks Comments on Cybersecurity Framework

The National Institute of Standards and Technology (NIST), publishers of the Framework for Improving Critical Infrastructure Cybersecurity (the “Framework”) last February, have published a Request for Information in the...more

Commissioner Aguilar Shares His Views on Directors’ Oversight of Cyber-Risk Management

On June 10, 2014, Commissioner Luis A. Aguilar spoke at a NYSE conference, “Cyber Risks and the Boardroom,” about what boards of directors should do to ensure that their companies are appropriately considering and addressing...more

SEC Commissioner Calls on Corporate Boards to Address Cybersecurity—Refers to NIST Cyber Framework as “the Bible”

While attending the "Cyber Risks and the Boardroom" Conference at the New York Stock Exchange on Tuesday, June 10, 2014, U.S. Securities and Exchange Commissioner Luis Aguilar called on corporate boards to make sure they are...more

Will the Cybersecurity Framework Create a New Standard Operating Procedure for Businesses?

On February 12, 2013, President Barack Obama issued Executive Order 13636 (EO 13636) entitled “Improving Critical Infrastructure Cybersecurity.”EO 13636 noted the importance of cybersecurity for the nation’s security and...more

The SEC’s Cybersecurity Assessment: A Roadmap for Companies Nationwide

The U.S. Securities & Exchange Commission (SEC) provided cybersecurity guidance to the securities industry in the form of a Risk Alert issued by the SEC’s Office of Compliance Inspections and Examinations (OCIE) on April 15,...more

Trendy “Cybersecurity” Versus Traditional “Information Security” Two Sides of the Same Security Coin

Cybersecurity has become a dominant topic of the day. The Snowden revelations, the mega-data breaches of 2013, the pervasiveness of invisible online “tracking” and the proliferation of “ data broker” trading in personal data...more

New Cybersecurity Framework Revealed

The framework provides standards and best practices for identifying, assessing, and managing cybersecurity risk. Now that the Obama administration has unveiled the final version of its anticipated Cybersecurity...more

The New Cybersecurity Framework—A Roadmap for All Companies

The recent string of well-publicized data breaches has demonstrated that cyber criminals are targeting companies of all sizes and in all industries. Even companies with the most sophisticated security systems admit that the...more

With Cyberattacks on the Rise, White House Releases Cybersecurity Framework

Given the apparent vulnerabilities evidenced by recent cyberattacks to big-box retailers, cybersecurity remains a top priority for both the federal government and private sector. On February 12, the National Institute of...more

California AG Weighs in on Cybersecurity

Just as NIST completes its version 1.0 national Framework for Improving Critical Infrastructure Cybersecurity, California Attorney General Kamala Harris has made clear she intends a leadership role for California. With a...more

California Bill Would Create Cyber Security Commission

In recognition of the increasing threat that cyber-attacks pose to the state's infrastructure and the considerable costs that government and private sectors are estimated to spend on cyber security (more than $70 billion...more

NIST Issues Cybersecurity Framework

On February 12, 2014, the Obama administration released the "Framework for Improving Critical Infrastructure Cybersecurity" (the "Framework"), a voluntary cybersecurity framework developed by the National Institute of...more

Cybersecurity Update – How Are You Impacted?

On February 12, 2014, the Obama Administration released the long-awaited Cybersecurity Framework: “a voluntary how-to guide for organizations in the critical infrastructure community to enhance their cybersecurity” (the...more

Privacy & Cybersecurity Update - February 2014

In This Issue: - NIST Releases Final Framework Document ..Key Changes From The Preliminary Framework ..The Framework Roadmap ..The DHS “C-Cubed” Program ..Next Steps - California Suggests Upper...more

Five Things Every In-House Counsel Should Understand About The NIST Cybersecurity Framework

While many in industry, particularly those in the Defense Industrial Base and government, have been sounding the alarm over cybersecurity for many years, only recently has it penetrated the American psyche. In fact, lately it...more

What The NIST Cybersecurity Framework Might Mean For Class Actions

After a year of public-private collaboration and considerable anticipation, the National Institute for Standards and Technology’s (NIST) cybersecurity framework for critical infrastructure has arrived. The interest in the...more

White House Issues Cybersecurity Framework: “Phase I” Implementation Begins

On February 12, 2014, the White House unveiled its final Cybersecurity Framework 1.0 along with a new U.S. Department of Homeland Security (DHS) “Critical Infrastructure Cyber Community (C3) Voluntary Program.” This capped...more

The Final NIST Cybersecurity Framework Document Is Out: Now What?

The year-long process – led by the National Institute of Standards and Technology (NIST) and the Department of Homeland Security (DHS) – of conducting outreach to the private sector, issuing drafts, receiving and evaluating...more

National Cybersecurity Framework Released - Has Your Organization Considered the Implications?

On February 12, 2014, the National Institute of Standards and Technology ("NIST") released the final version of its Framework for Improving Critical Infrastructure Cybersecurity (the "Cybersecurity Framework" or "Framework")...more

84 Results
|
View per page
Page: of 4